I have HTTPS Scanning disabled.
I use AVAST Free Antivirus.
I have disabled this feature because IMO I am safer without it....
I am aware that HTTPS does not mean safe by default,and also that it is too easy for an unsafe site to become HTTPS,
but despite these facts I do not feel comfortable with my AV carrying out what equates to a "MitM" HTTPS decryption attack like "Superfish" minus the ad-injections,whether this is meant to be for my benefit or not!
I am prepared to make the trade-off that any unsafe HTTPS sites remain unscanned as I believe that by adopting this approach I am also making genuinely safe HTTPS sites LESS vulnerable....and considering that these sites could be used for Banking I consider this a must.
My primary goal is to prevent any vulnerability in Genuine,Safe,Important HTTPS sites.
The secondary goal of Safety on less important HTTPS sites (that do not house financial transactions) is left to a combination of Browser-Rules ,Extensions and Software...
No Flash,Java,or Auto Downloads...Trafficlight/uBlock Origin/...Sandboxie.
I do not see the Logic in making an unimportant site stronger if this could possibly result in making an important site weaker.